漏洞 Vulnerability CVE-2020-1301:Windows SMB远程执行代码漏洞 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1301 CVE-2020-1206:Windows SMBv3客户端/服务器信息泄露漏洞 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1206 CVE-2020-1284:Windows SMBv3客户端/服务器拒绝服务漏洞 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1284 CVE-2020-6110: Zoom 会议客户端远程代码执行漏洞通告 https://cert.360.cn/warning/detail?id=85e217962033ccd843af9b6f806018c5 Cisco IOS 多个高危漏洞通告 https://cert.360.cn/warning/detail?id=f33e7a9251b1dd1e1c5180017243ebd7 Castel NextGen DVR(硬盘录像机)多个漏洞 https://seclists.org/fulldisclosure/2020/Jun/8 安全资讯 Security Information 开源软件安全性研究：流行的开源项目中的漏洞在2019年翻了一番 https://www.zdnet.com/article/vulnerabilities-in-popular-open-source-projects-doubled-in-2019/ 安全事件 Security Incident 2020-06 补丁日: 微软多个产品高危漏洞安全风险通告 https://cert.360.cn/warning/detail?id=8df2cb3b1fd3224325d83bbd6ef5f79e 针对QNAP NAS设备另一波勒索攻击 https://www.zdnet.com/article/qnap-nas-devices-targeted-in-another-wave-of-ransomware-attacks/ 本田证实其受到网络攻击 https://www.zdnet.com/article/honda-confirms-its-network-has-been-hit-by-cyber-attack/ 安全研究 Security Research CVE-2020-1281: Windows OLE远程执行代码漏洞分析 https://github.com/guhe120/Windows-EoP/blob/master/CVE-2020-1281/CVE-2020-1281.pdf 利用windows telemetry 实现权限维持 https://www.trustedsec.com/blog/abusing-windows-telemetry-for-persistence/?utm_content=131234033&utm_medium=social&utm_source=twitter&hss_channel=tw-403811306